CVE-2023-39575

Name of the Vulnerable Software and Affected Versions ISL ARP Guard version 4.0.2

Description A reflected cross-site scripting (XSS) issue exists in the url str URL parameter, allowing attackers to execute arbitrary web scripts or HTML via a crafted payload. This enables the execution of malicious code on the victim's browser.

Recommendations For ISL ARP Guard version 4.0.2, consider restricting access to the url str parameter to minimize the risk of exploitation until a patch is available. Avoid using the url str parameter in the affected URL endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.